summaryrefslogtreecommitdiff
path: root/manifests
AgeCommit message (Collapse)Author
2017-05-08try to be extra cautious when restarting and do it with the try, so nothing ↵mh
breaks if something is broken that is not connected at compile time
2017-05-08don't notify the servicemh
2017-05-01this is IPv4 only so farmh
2017-05-01also support EL6 style filesmh
2017-05-01add missing package for EL6mh
2017-04-25we should start managing also that filemh
2017-04-25manage policies for shorewall6mh
2017-04-25make it possibble to disable ipv6 for these rulesmh
2017-04-25enable shorewall6 rules by defaultmh
2017-04-25suffix it with _IP6, so we can have duplicate definitions with IPv4 shorewallmh
2017-04-25suffix it with _IP6, so we can have duplicate definitions with IPv4 shorewallmh
2017-04-15lintingmh
2017-04-09minor lintingmh
2017-04-09make it possible to manage rules for ipv4 & ipv6 + add some more modern ↵mh
headers for certain versions
2017-04-09make output nicermh
2017-04-08migrate to dedicated paramsmh
2017-04-08introduce params4 and params6 helper to more easily differentiatemh
2017-04-08introduce params only for ipv6 and only for ipv4mh
2017-04-08introduce params for shorewall6, by default it's just a copy of the ones for ↵mh
shorewall
2017-04-08broadcast column is not needed for shorewall6mh
2017-04-08manage interfaces for shorewall6mh
2017-04-08cleanup certain unsupported optionsmh
2017-04-08group that togethermh
2017-04-07rename snippetmh
2017-04-07add mgmt of files for shorewall6mh
2017-04-07make zones also for ipv6mh
2017-04-07make dependencies a bit more clearmh
2017-04-07fix pathmh
2017-04-07correct namingmh
2017-04-07first step towards shorewall6, basic service is runningmh
2017-04-07calculate whether we want to disable ipv6 (if there is no public ipv6 ↵mh
address) or not
2017-02-19no need for openvpn outgoingmh
2017-01-14Merge pull request #13 from marknl/masterduritong
Conntrack support
2017-01-13Merge remote-tracking branch 'github/master'mh
2017-01-13correct decisionmh
2017-01-13also support the older versionsmh
2017-01-12Merge branch 'master' into masterduritong
2017-01-12Merge pull request #15 from marknl/patch-2duritong
Added $host option
2017-01-12Use $name for backwards compatibilityMarknl
2017-01-12connect docu with classmh
2017-01-12Merge remote-tracking branch 'github/master'mh
2017-01-11Brought $name back into the game for backw. compatMarknl
2017-01-10Added $host optionMarknl
Current rule.pp converts the $name into the "HOST" parameter in the file, this can result in these definitions: ```shorewall::host { 'eth0:$VPN_HOSTS': zone => 'vpn', options => 'ipsec', order => 200; }``` I suggest moving the variable usage from the $name into a $host parameter, so above example becomes: ```shorewall::host { 'vpn-hosts': zone => 'vpn', host => 'eth0:$VPN_HOSTS', options => 'ipsec', order => 200; }```
2016-12-27Conntrack helperMarknl
2016-12-27Added conntrack to managed filesMarknl
2016-09-23add tor out rulemh
2016-06-29* fix rule sectionLebedev Vadim
2016-06-26older puppet versions can't yet dealt with thatmh
2016-06-26modernize so we don't need to deploy a full config file anymoremh
2016-06-25make this a booleanmh
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-26 11:32:02 +0000